$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa File: AS142346.roa (raw, json) Hash identifier: v2n7LINh3dVwe0Z2IQuYK9EyNFmMCbPPzVsgl+oY4e4= Subject key identifier: 6B:BC:09:D6:E9:35:00:A5:B3:5F:65:BA:9B:5E:01:DB:38:83:1E:93 Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6C5305F664471F37419EB711FE89D9A8965E5E83 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa Signing time: Thu 14 Dec 2023 07:00:00 +0000 ROA not before: Thu 14 Dec 2023 06:55:00 +0000 ROA not after: Thu 12 Dec 2024 07:00:00 +0000 asID: 142346 IP address blocks: 2001:df1:cc40::/48 maxlen: 48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:53:05:f6:64:47:1f:37:41:9e:b7:11:fe:89:d9:a8:96:5e:5e:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 14 06:55:00 2023 GMT Not After : Dec 12 07:00:00 2024 GMT Subject: CN=6BBC09D6E93500A5B35F65BA9B5E01DB38831E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:bb:bb:b9:fb:0b:7e:fe:19:aa:58:f7:39: e4:eb:82:5a:19:bd:8d:7c:61:fd:ae:5a:5f:76:e2: 5d:84:d5:39:01:15:df:83:0e:27:f0:f3:79:6d:18: 7e:ff:ed:ad:db:88:4d:de:87:0d:dc:ec:9a:52:2d: 2f:89:b2:8d:fb:c2:a1:ad:6c:d2:e6:06:48:47:6b: 6f:07:84:8f:5d:c3:ea:ae:25:fe:3d:20:f6:13:fc: 99:0f:86:76:2f:65:0c:54:b3:a5:ba:b7:6d:a4:f0: cb:e6:b5:60:77:7f:75:3d:0b:b4:dd:22:49:02:83: 6d:d8:87:44:2c:e9:41:c5:19:2f:69:ad:fd:62:3f: cb:84:8a:76:8c:01:49:cd:05:20:35:67:da:3e:2d: 2b:5d:a4:db:42:e9:51:43:ca:2e:b7:e3:19:d9:7b: 96:6a:3c:8e:84:a4:07:69:b9:80:2f:f9:80:c5:f6: 3d:fd:18:df:45:91:16:e3:c4:72:28:2f:fa:c9:e7: a8:ac:5a:0d:6a:b4:d7:d4:e9:a8:56:76:ee:f8:91: de:b5:e7:3b:6a:99:69:0c:8a:89:c6:c1:cb:51:5e: c7:e7:4d:05:0f:cc:b1:97:3f:22:9c:cb:ac:10:44: 1c:c8:f4:b6:aa:cc:c1:1e:6c:1a:10:5c:83:5d:19: 07:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BC:09:D6:E9:35:00:A5:B3:5F:65:BA:9B:5E:01:DB:38:83:1E:93 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AS142346.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df1:cc40::/48 Signature Algorithm: sha256WithRSAEncryption 45:ea:8f:7c:6c:65:81:5f:ed:2a:7f:59:8c:bc:bd:34:66:af: ee:42:84:6d:2f:37:7b:9a:62:75:bd:34:07:0f:b2:9c:85:b8: e9:c9:6d:65:c1:6e:1d:62:18:9d:68:57:4a:b0:45:8b:3e:dd: c9:b0:d5:84:67:28:f6:aa:32:65:c1:ce:26:3a:0a:10:1a:2a: 61:36:d6:d0:4f:6f:fe:14:ef:08:f2:f6:09:86:24:33:9e:20: e8:07:ca:64:da:53:89:0c:3e:1e:04:27:3a:4d:94:70:39:36: 1e:7c:3c:c6:93:c3:f8:29:f9:09:bb:45:59:57:2a:3d:ba:07: e4:57:0b:75:7c:35:48:f8:95:20:b2:88:86:a5:c0:86:77:fb: 7a:3e:e5:50:fe:c1:27:27:68:49:95:77:b2:ff:7c:b7:bc:f7: d5:8c:1a:6b:86:4e:d5:5a:c4:55:79:15:e0:93:67:74:01:b4: 25:15:c0:a7:49:d4:e0:8a:ae:f9:ad:b0:c4:ee:88:58:b1:9e: 53:3d:32:0d:49:39:7c:17:1a:b5:dc:6b:ea:a5:65:09:8c:64: ae:d6:6c:17:51:0b:f1:20:f5:a1:61:a7:0c:46:7d:49:52:44: 27:81:13:b2:79:46:35:ce:56:35:2b:24:9f:ee:a0:61:08:b3: 67:49:6b:ea -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUbFMF9mRHHzdBnrcR/onZqJZeXoMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxNDA2NTUwMFoX DTI0MTIxMjA3MDAwMFowMzExMC8GA1UEAxMoNkJCQzA5RDZFOTM1MDBBNUIzNUY2 NUJBOUI1RTAxREIzODgzMUU5MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVLu7u5+wt+/hmqWPc55OuCWhm9jXxh/a5aX3biXYTVOQEV34MOJ/DzeW0Y fv/trduITd6HDdzsmlItL4myjfvCoa1s0uYGSEdrbweEj13D6q4l/j0g9hP8mQ+G di9lDFSzpbq3baTwy+a1YHd/dT0LtN0iSQKDbdiHRCzpQcUZL2mt/WI/y4SKdowB Sc0FIDVn2j4tK12k20LpUUPKLrfjGdl7lmo8joSkB2m5gC/5gMX2Pf0Y30WRFuPE cigv+snnqKxaDWq019TpqFZ27viR3rXnO2qZaQyKicbBy1Fex+dNBQ/MsZc/IpzL rBBEHMj0tqrMwR5sGhBcg10ZB8cCAwEAAaOCAdMwggHPMB0GA1UdDgQWBBRrvAnW 6TUApbNfZbqbXgHbOIMekzAfBgNVHSMEGDAWgBS6j3fSHlj+nJOaa3DiWFYX4YM3 azAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9CQThGNzdEMjFFNThGRTlD OTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCLmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CNTI3 RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi91bzkzMGg1WV9weVRtbXR3NGxo V0YtR0ROMnMuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMi9BUzE0MjM0Ni5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEw DwQCAAIwCQMHACABDfHMQDANBgkqhkiG9w0BAQsFAAOCAQEAReqPfGxlgV/tKn9Z jLy9NGav7kKEbS83e5pidb00Bw+ynIW46cltZcFuHWIYnWhXSrBFiz7dybDVhGco 9qoyZcHOJjoKEBoqYTbW0E9v/hTvCPL2CYYkM54g6AfKZNpTiQw+HgQnOk2UcDk2 Hnw8xpPD+Cn5CbtFWVcqPboH5FcLdXw1SPiVILKIhqXAhnf7ej7lUP7BJydoSZV3 sv98t7z31Ywaa4ZO1VrEVXkV4JNndAG0JRXAp0nU4Iqu+a2wxO6IWLGeUz0yDUk5 fBcatdxr6qVlCYxkrtZsF1EL8SD1oWGnDEZ9SVJEJ4ETsnlGNc5WNSskn+6gYQiz Z0lr6g== -----END CERTIFICATE-----Generated at Wed May 8 09:50:38 2024 by rpki-client on console-fra.rpki-client.org